139.59.24.245 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
139.59.249.83	attack	(sshd) Failed SSH login from 139.59.249.83 (SG/Singapore/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 13 13:57:56 jbs1 sshd[21873]: Invalid user tibor from 139.59.249.83 Oct 13 13:57:56 jbs1 sshd[21873]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.249.83 Oct 13 13:57:58 jbs1 sshd[21873]: Failed password for invalid user tibor from 139.59.249.83 port 58225 ssh2 Oct 13 14:10:05 jbs1 sshd[26846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.249.83 user=root Oct 13 14:10:06 jbs1 sshd[26846]: Failed password for root from 139.59.249.83 port 8758 ssh2	2020-10-14 03:16:32
139.59.249.83	attackspambots	2020-10-12 UTC: (42x) - allan,amanda,anikei,buser,ek,ftpuser2,hadoop(2x),harrison,jean,klement,nagios,netfonts,postgres,prueba(2x),public,root(17x),tkomatsu,ubuntu,web,workstation,xpertin,yosinski,yvonne,zlin	2020-10-13 18:34:11
139.59.249.83	attackspambots	2020-10-12T08:42:23.648388hostname sshd[47670]: Failed password for root from 139.59.249.83 port 22774 ssh2 ...	2020-10-13 02:39:04
139.59.249.83	attack	no	2020-10-12 18:04:34
139.59.249.16	attack	Brute Force	2020-10-10 06:33:59
139.59.246.13	attackspam	Oct 9 09:41:14 lanister sshd[27061]: Invalid user adam from 139.59.246.13 Oct 9 09:41:14 lanister sshd[27061]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.246.13 Oct 9 09:41:14 lanister sshd[27061]: Invalid user adam from 139.59.246.13 Oct 9 09:41:16 lanister sshd[27061]: Failed password for invalid user adam from 139.59.246.13 port 42466 ssh2	2020-10-10 02:44:53
139.59.249.16	attackspambots	Brute Force	2020-10-09 22:45:33
139.59.246.13	attackbotsspam	2020-10-09T13:01:32.362175lavrinenko.info sshd[20502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.246.13 2020-10-09T13:01:32.354869lavrinenko.info sshd[20502]: Invalid user gpadmin from 139.59.246.13 port 60390 2020-10-09T13:01:34.159994lavrinenko.info sshd[20502]: Failed password for invalid user gpadmin from 139.59.246.13 port 60390 ssh2 2020-10-09T13:05:38.634774lavrinenko.info sshd[20727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.246.13 user=root 2020-10-09T13:05:40.538055lavrinenko.info sshd[20727]: Failed password for root from 139.59.246.13 port 37052 ssh2 ...	2020-10-09 18:29:43
139.59.242.22	attackbots	SSH login attempts.	2020-10-09 16:24:39
139.59.249.16	attack	Brute Force	2020-10-09 14:36:45
139.59.242.22	attackspambots	Lines containing failures of 139.59.242.22 Oct 7 10:23:42 MAKserver05 sshd[7358]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.242.22 user=r.r Oct 7 10:23:43 MAKserver05 sshd[7358]: Failed password for r.r from 139.59.242.22 port 57086 ssh2 Oct 7 10:23:43 MAKserver05 sshd[7358]: Received disconnect from 139.59.242.22 port 57086:11: Bye Bye [preauth] Oct 7 10:23:43 MAKserver05 sshd[7358]: Disconnected from authenticating user r.r 139.59.242.22 port 57086 [preauth] Oct 7 10:45:59 MAKserver05 sshd[8321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.242.22 user=r.r Oct 7 10:46:01 MAKserver05 sshd[8321]: Failed password for r.r from 139.59.242.22 port 37070 ssh2 Oct 7 10:46:03 MAKserver05 sshd[8321]: Received disconnect from 139.59.242.22 port 37070:11: Bye Bye [preauth] Oct 7 10:46:03 MAKserver05 sshd[8321]: Disconnected from authenticating user r.r 139.59.242.22 por........ ------------------------------	2020-10-09 03:24:31
139.59.241.75	attackbots	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2020-10-07T21:50:45Z	2020-10-08 07:03:27
139.59.241.75	attack	Oct 7 13:33:06 ns382633 sshd\[12585\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.241.75 user=root Oct 7 13:33:08 ns382633 sshd\[12585\]: Failed password for root from 139.59.241.75 port 58325 ssh2 Oct 7 13:36:40 ns382633 sshd\[13090\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.241.75 user=root Oct 7 13:36:42 ns382633 sshd\[13090\]: Failed password for root from 139.59.241.75 port 45505 ssh2 Oct 7 13:37:48 ns382633 sshd\[13183\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.241.75 user=root	2020-10-07 23:27:34
139.59.241.75	attackspam	<6 unauthorized SSH connections	2020-10-07 15:32:39
139.59.241.75	attackbots	Sep 27 03:09:56 vmi369945 sshd\[15031\]: Invalid user shawn from 139.59.241.75 Sep 27 03:09:56 vmi369945 sshd\[15031\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.241.75 Sep 27 03:09:58 vmi369945 sshd\[15031\]: Failed password for invalid user shawn from 139.59.241.75 port 45915 ssh2 Sep 27 03:25:21 vmi369945 sshd\[15301\]: Invalid user pepe from 139.59.241.75 Sep 27 03:25:21 vmi369945 sshd\[15301\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.241.75 ...	2020-10-05 01:30:18

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.24.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18555
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.59.24.245.			IN	A

;; AUTHORITY SECTION:
.			593	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:37:19 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 245.24.59.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 245.24.59.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
159.203.17.176	attackspam	Oct 9 07:45:48 MK-Soft-VM4 sshd[13227]: Failed password for root from 159.203.17.176 port 55784 ssh2 ...	2019-10-09 17:59:51
159.226.118.184	attack	Jul 29 13:05:52 server sshd\[148350\]: Invalid user git from 159.226.118.184 Jul 29 13:05:52 server sshd\[148350\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.226.118.184 Jul 29 13:05:53 server sshd\[148350\]: Failed password for invalid user git from 159.226.118.184 port 53275 ssh2 ...	2019-10-09 17:48:36
159.203.198.34	attackbots	$f2bV_matches	2019-10-09 17:57:25
159.65.111.89	attackspam	May 21 10:13:20 server sshd\[45030\]: Invalid user jsserver from 159.65.111.89 May 21 10:13:20 server sshd\[45030\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.111.89 May 21 10:13:22 server sshd\[45030\]: Failed password for invalid user jsserver from 159.65.111.89 port 58912 ssh2 ...	2019-10-09 17:45:55
203.190.154.109	attackspam	Lines containing failures of 203.190.154.109 Oct 6 08:46:15 nxxxxxxx sshd[17073]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.190.154.109 user=r.r Oct 6 08:46:17 nxxxxxxx sshd[17073]: Failed password for r.r from 203.190.154.109 port 50084 ssh2 Oct 6 08:46:17 nxxxxxxx sshd[17073]: Received disconnect from 203.190.154.109 port 50084:11: Bye Bye [preauth] Oct 6 08:46:17 nxxxxxxx sshd[17073]: Disconnected from authenticating user r.r 203.190.154.109 port 50084 [preauth] Oct 6 08:55:36 nxxxxxxx sshd[18168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.190.154.109 user=r.r Oct 6 08:55:38 nxxxxxxx sshd[18168]: Failed password for r.r from 203.190.154.109 port 41938 ssh2 Oct 6 08:55:38 nxxxxxxx sshd[18168]: Received disconnect from 203.190.154.109 port 41938:11: Bye Bye [p .... truncated .... Lines containing failures of 203.190.154.109 Oct 6 08:46:15 nxxxxxxx sshd[17073]: ........ ------------------------------	2019-10-09 18:10:10
67.205.153.16	attackspam	Oct 9 10:57:12 lnxmail61 sshd[316]: Failed password for root from 67.205.153.16 port 44226 ssh2 Oct 9 11:00:46 lnxmail61 sshd[1888]: Failed password for root from 67.205.153.16 port 55734 ssh2	2019-10-09 17:38:24
23.129.64.184	attackbots	Oct 9 10:30:57 rotator sshd\[25623\]: Failed password for root from 23.129.64.184 port 37356 ssh2Oct 9 10:31:01 rotator sshd\[25623\]: Failed password for root from 23.129.64.184 port 37356 ssh2Oct 9 10:31:04 rotator sshd\[25623\]: Failed password for root from 23.129.64.184 port 37356 ssh2Oct 9 10:31:07 rotator sshd\[25623\]: Failed password for root from 23.129.64.184 port 37356 ssh2Oct 9 10:31:12 rotator sshd\[25623\]: Failed password for root from 23.129.64.184 port 37356 ssh2Oct 9 10:31:14 rotator sshd\[25623\]: Failed password for root from 23.129.64.184 port 37356 ssh2 ...	2019-10-09 17:53:15
159.65.129.64	attackspam	Aug 4 13:01:43 server sshd\[70773\]: Invalid user seafile from 159.65.129.64 Aug 4 13:01:43 server sshd\[70773\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.129.64 Aug 4 13:01:45 server sshd\[70773\]: Failed password for invalid user seafile from 159.65.129.64 port 45530 ssh2 ...	2019-10-09 17:43:16
159.203.73.181	attack	2019-10-09T04:59:10.329362abusebot-4.cloudsearch.cf sshd\[28089\]: Invalid user P4ssword@123 from 159.203.73.181 port 37069	2019-10-09 17:54:54
1.174.90.129	attackspam	" "	2019-10-09 17:50:16
60.218.152.131	attackspam	Unauthorised access (Oct 9) SRC=60.218.152.131 LEN=40 TTL=49 ID=36411 TCP DPT=8080 WINDOW=32356 SYN	2019-10-09 17:40:32
159.65.135.55	attack	Apr 22 16:34:41 server sshd\[44924\]: Invalid user ubnt from 159.65.135.55 Apr 22 16:34:41 server sshd\[44924\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.135.55 Apr 22 16:34:43 server sshd\[44924\]: Failed password for invalid user ubnt from 159.65.135.55 port 42972 ssh2 ...	2019-10-09 17:39:37
113.77.13.125	attackspambots	Unauthorised access (Oct 9) SRC=113.77.13.125 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=34859 TCP DPT=8080 WINDOW=44094 SYN Unauthorised access (Oct 8) SRC=113.77.13.125 LEN=40 TOS=0x10 PREC=0x40 TTL=50 ID=45389 TCP DPT=8080 WINDOW=44094 SYN Unauthorised access (Oct 8) SRC=113.77.13.125 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=20962 TCP DPT=8080 WINDOW=49638 SYN Unauthorised access (Oct 8) SRC=113.77.13.125 LEN=40 TOS=0x10 PREC=0x40 TTL=50 ID=5627 TCP DPT=8080 WINDOW=27874 SYN Unauthorised access (Oct 8) SRC=113.77.13.125 LEN=40 TOS=0x10 PREC=0x40 TTL=50 ID=39002 TCP DPT=8080 WINDOW=36927 SYN	2019-10-09 17:42:46
124.243.198.190	attackbots	Oct 8 23:23:19 hpm sshd\[14673\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.243.198.190 user=root Oct 8 23:23:21 hpm sshd\[14673\]: Failed password for root from 124.243.198.190 port 50980 ssh2 Oct 8 23:28:21 hpm sshd\[15105\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.243.198.190 user=root Oct 8 23:28:23 hpm sshd\[15105\]: Failed password for root from 124.243.198.190 port 53322 ssh2 Oct 8 23:33:18 hpm sshd\[15550\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.243.198.190 user=root	2019-10-09 17:36:30
222.179.154.92	attack	Oct 8 17:52:09 hpm sshd\[25933\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.179.154.92 user=root Oct 8 17:52:11 hpm sshd\[25933\]: Failed password for root from 222.179.154.92 port 55796 ssh2 Oct 8 17:52:14 hpm sshd\[25933\]: Failed password for root from 222.179.154.92 port 55796 ssh2 Oct 8 17:52:16 hpm sshd\[25933\]: Failed password for root from 222.179.154.92 port 55796 ssh2 Oct 8 17:52:34 hpm sshd\[25971\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.179.154.92 user=root	2019-10-09 17:34:41

Recently Reported IPs

139.59.24.81	139.59.240.98	139.59.241.181	118.254.202.197
139.59.241.98	139.59.242.161	139.59.241.208	139.59.242.60
139.59.242.48	139.59.242.51	139.59.243.116	139.59.243.142
139.59.242.93	139.59.242.94	139.59.243.161	118.254.202.203
139.59.243.186	139.59.243.196	139.59.243.21	139.59.243.222